Previous Job
Previous
Security Architect
Ref No.: 18-18238
Location: Newark, New Jersey
Job Description:
Job Overview:
The Security Architect will partner with Enterprise Architects, Infrastructure and Development Teams to develop a deep technical understanding of current and future technology ecosystem. Incumbent will conduct architecture reviews, threat modeling, identify risks and advise IT, business owners and technical teams on options to mitigate the risk.

Major Responsibilities:
1. Review enterprise architecture diagrams and recommend security related enhancements.
2. Model attack vectors and design security controls to mitigate risk
3. Strong knowledge of cloud security concepts with SaaS, PaaS and IaaS platforms and the architectural knowledge of Amazon Web Services (AWS) and Microsoft Azure cloud services.
4. Plan, design, develop and maintain security technologies, diagrams, processes and procedures.
5. Develop and implement enterprise-wide and cross-functional integration solutions
6. Research and recommend new industry IT cyber security models, management strategies and effective resource utilization models that can be presented to Senior Leadership (i.e. Directors and above)
7. Conduct technology reviews and audits that ensure computer systems are built to reference security architecture principles
8. Help build security into infrastructure and architecture designs and guide the implementation with the operations team
9. Create and deliver knowledge sharing presentations and documentation to security, developers and operations teams
10. Learn on the job and explore new technologies with little supervision to identify new and emerging security threats

Qualifications
Education/Experience:
• Requires bachelor's degree in computer science or information security
• Requires a minimum of 6 years of professional IT work experience or a master's degree and 4 years of professional work experience
• Requires a minimum of 2 years of experience in technology such as enterprise security architecture design and developing threat models as well as architecture risk analysis.

Additional licensing, certifications, registrations:
CISSP, SANS Certifications
AWS Certifications

Knowledge of:
• Application security tools such as: HTTP and TCP proxies, fuzzers, scanners, debuggers, simulators, etc
• Common vulnerabilities in the OWASP top 10 list
• Protocols/technologies like SOA, HTTP, SSL/TLS, LDAP, JDBC, Servlet/JSP, SQL, HTML, XML
• Java Application and Java Application Server administration/tuning
• Amazon Web Services (AWS) and/or Microsoft Azure and/or VMware vCloud and/or Docker
• Encryption standards

Skills and Abilities:
• Ability to understand software design algorithms
• Ability to write scripts in languages such as Python, BASH, or PowerShell for automation preferred